Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
amazon vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2018-11567
before 2018-04-27, the reprompt feature in Amazon Echo devices could be misused by a custom Alexa skill. The reprompt feature is designed so that if Alexa does not receive an input within 8 seconds, the device can speak a reprompt, then wait an additional 8 seconds for input; if ...
Amazon Echo Show Firmware
Amazon Echo Plus Firmware
Amazon Echo Dot Firmware
Amazon Echo Spot Firmware
Amazon Echo Firmware
5.5
CVSSv3
CVE-2023-30610
aws-sigv4 is a rust library for low level request signing in the aws cloud platform. The `aws_sigv4::SigningParams` struct had a derived `Debug` implementation. When debug-formatted, it would include a user's AWS access key, AWS secret key, and security token in plaintext. W...
Amazon Aws-sigv4 0.54.1
Amazon Aws-sigv4 0.53.1
Amazon Aws-sigv4 0.52.0
Amazon Aws-sigv4 0.51.0
Amazon Aws-sigv4 0.50.0
Amazon Aws-sigv4 0.49.0
Amazon Aws-sigv4 0.48.0
Amazon Aws-sigv4 0.47.0
Amazon Aws-sigv4 0.46.0
Amazon Aws-sigv4 0.15.0
Amazon Aws-sigv4 0.14.0
Amazon Aws-sigv4 0.13.0
Amazon Aws-sigv4 0.12.0
Amazon Aws-sigv4 0.11.0
Amazon Aws-sigv4 0.10.1
Amazon Aws-sigv4 0.9.0
Amazon Aws-sigv4 0.8.0
Amazon Aws-sigv4 0.7.0
Amazon Aws-sigv4 0.6.0
Amazon Aws-sigv4 0.5.2
Amazon Aws-sigv4 0.4.1
Amazon Aws-sigv4 0.3.0
5.9
CVSSv3
CVE-2018-16524
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of TCP options in prvCheckOptions.
Amazon Amazon Web Services Freertos
Amazon Freertos
5.9
CVSSv3
CVE-2018-16527
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow information disclosure during parsing of ICMP packets in prvProcessICMPPacket.
Amazon Freertos
Amazon Amazon Web Services Freertos
5.9
CVSSv3
CVE-2018-16602
An issue exists in Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory access during parsing of DHCP responses in prvProcessDHCPReplies can be used...
Amazon Freertos
Amazon Amazon Web Services Freertos
8.1
CVSSv3
CVE-2018-16525
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote malicious users to execute arbitrary code or leak information because of a Buffer Overflow during parsin...
Amazon Amazon Web Services Freertos
Amazon Freertos
5.9
CVSSv3
CVE-2018-16598
An issue exists in Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. In xProcessReceivedUDPPacket and prvParseDNSReply, any received DNS response is accepted, without...
Amazon Amazon Web Services Freertos
Amazon Freertos
1 Github repository
5.9
CVSSv3
CVE-2018-16603
An issue exists in Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can l...
Amazon Amazon Web Services Freertos
Amazon Freertos
7.4
CVSSv3
CVE-2018-16523
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow division by zero in prvCheckOptions.
Amazon Amazon Web Services Freertos
Amazon Freertos
8.1
CVSSv3
CVE-2018-16526
Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component allow remote malicious users to leak information or execute arbitrary code because of a Buffer Overflow during genera...
Amazon Amazon Web Services Freertos
Amazon Freertos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »